Open supply chain hack of VS Code extensions

Be warned the following VS Code extensions are again subject to a supply chain hack, these extensions are reported to have  GlassWorm malware. 

New GlassWorm attack targets macOS via compromised OpenVSX extensions (bleepingcomputer.com)

Open VSX Supply Chain Attack Used Compromised Dev Account to Spread GlassWorm (thehackernews.com)

Delete Long Path Tool - Delete paths over 260 characters in length Windows

After a brutal over-heat of my hard-drive, I have had to recover my hard-drive using a recovery tool, which also failed. It however left many incorrect recovered long paths to my 16T drive. I had to delete these and could not find a good tool to-do it, so I made my own. 

Download   del260Personal.7z (you need  https://www.7-zip.org/ to unpack). For personal use only. Will open this page on each run. Copy into c:\Windows\System32 to use from cmd.exe.

License: 

del260Personal.7z personal use only, commercial license required. Contact as validated today,    available for license request. 

=== Long Path Deleter (del260.exe) ===
Supports deleting long paths > 260 characters.
Features double confirmation prompt and runtime log.

Warning: No recycle bin, this is a permanent delete.


Usage: del260.exe <directory_path> [options]

Options:
  /force    Force delete read-only files
  /hidden   Delete hidden files
  /system   Delete files with system file attribute (use with caution!)
  /norecursive  Don't delete subdirectories, stop recursive delete

  /help or /?

Examples:
del260.exe "C:\Long Path\Directory" /force /hidden
del260.exe "\\server\share\long path" /force
del260.exe "C:\Temp" /force /hidden /system

For full license read EULA.txt.

THIS SOFTWARE IS PROVIDED “AS IS” AND “AS AVAILABLE,” WITHOUT ANY WARRANTIES OF ANY KIND.
To the fullest extent permitted by law, the provider expressly disclaims all warranties, whether express, implied, statutory, or otherwise, including but not limited to any implied warranties of merchantability, non‑infringement, and fitness for a particular purpose.
The user assumes all risks associated with the installation, configuration, use, or performance of this software. No guarantee is made regarding accuracy, reliability, security, or suitability for any specific task or environment. In no event shall the provider be liable for any damages arising from or related to the use of this software.


Long Path Deleter (del260.exe) Version 1.26.202.1020
Copyright © 2026, MetadataConsulting.ca

			

Lottery Phishing Email with subject Congratulations You’ve Just Hit the Jackpot!

For the record, this is a generic Lottery phishing email attempt that is recently going around, with subject line "Congratulations You’ve Just Hit the Jackpot!". 

What to do?  Report them, goto bottom of page. 

From:  The Winning Desk <newsletters.Qtdx@intelligentgem8337.ivvanamurillo.com> Subject:  Congratulations You’ve Just Hit the Jackpot!

PHISHING LINKs;

1. http://xn--i4fw9jrd58s-odb60k.vipleyo.com/xxxx?xxx

How to tell this is a Phishing email?

1. Check email address in full, if it's not from originating company then it's phishing.
2. Hover over all links in email, if it's not from the company's website then forget it.
3. The best way is to 

How to examine Email Message Source?

Now let's look at message source

1. Outlook.com->Actions->View Message Source. 
2. Gmail.com->More (down arrow to top right)->Show original.

Check for suspicious links, anything that does not originate from source domain, like apple.com.

Report Phishing Email (not as Spam)

1. Outlook.com->Junk (at Top)->Phishing Scam
2. Gmail.com->More (down-arrow to top right)->Report Phishing 

Report Phishing to Google

If you have received this email, take further action by

1. https://www.google.com/safebrowsing/report_phish/

Report phishing at Microsoft and government agencies

1. http://www.microsoft.com/security/online-privacy/phishing-faq.aspx